|
| Popular Security News |
|
| See More |
|
| Latest Security News |
OnePlus 8 Review: Androids Mid-range Champ Has Less Bang For More BucksIn a topsy-turvy world where Apple is releasing $399 iPhones and OnePlus is making $999 premium phones, the OnePlus 8 should be the perfect foil to the OnePlus 8 Pro. After all, OnePlus built its reputation on showing up the high-priced... |
OnePlus 8 Pro Review: A Great Phone Thats No Longer A Great ValueThe OnePlus 8 Pro ushers in a bunch of firsts for the humble Android phone maker. It’s the first OnePlus display with a hole-punch camera and a 120Hz refresh rate. It’s the first OnePlus phone with wireless charging and a quad-camera.... |
Blink Mini Review: Amazon Jumps Into The Budget Security Camera FrayBlink Mini review: Amazon jumps into the budget security camera fray |
Google Meet Becomes Free For Everyone, As The Pursuit Of Zoom ContinuesGoogle Meet is now free for everyone. As part of the video conferencing land rush begun by Zoom, Google has moved Google Meet out of its paid, premium tier, and made it available to both consumers and professionals alike.In the same way... |
Six Critical Vulnerabilities Patched In MagentoUpdates released by Adobe on Tuesday for the Magento Commerce and Open Source editions address multiple critical severity vulnerabilities that could lead to arbitrary code execution.
read more |
|
| See More |
|
| Latest News from Research Labs |
Grandoreiro: How Engorged Can An EXE Get?Another in our occasional series demystifying Latin American banking trojans
The post Grandoreiro: How engorged can an EXE get? appeared first on WeLiveSecurity |
Would You Have Fallen For This Phone Scam?You may have heard that todays phone fraudsters like to use use caller ID spoofing services to make their scam calls seem more believable. But you probably didnt know that your bank may be making it super easy for thieves to impersonate... |
Microsoft Teams Flaw Could Let Attackers Hijack AccountsMicrosoft plugs a security hole that could have enabled attackers to weaponize a GIF in order to hijack Teams accounts and steal data
The post Microsoft Teams flaw could let attackers hijack accounts appeared first on WeLiveSecurity |
Putting The Model To Work: Enabling Defenders With Vulnerability
Intelligence — Intelligence For Vulnerability Management, Part ThreeOne of the critical strategic and tactical roles that cyber threatintelligence (CTI) plays is in the tracking, analysis, andprioritization of software vulnerabilities that could potentiallyput an organization’s data, employees and customers... |
Unproven Coronavirus Therapy Proves Cash Cow For Shadow PharmaciesMany of the same shadowy organizations that pay people to promote male erectile dysfunction drugs via spam and hacked websites recently have enjoyed a surge in demand for medicines used to fight malaria, lupus and arthritis, thanks largely... |
|
| See More |
|
| Latest Security Videos & Podcasts |
What’s Wrong With WebSocket APIs - Unveiling Vulnerabilities In WebSocket APIs - Mikhail EgorovWebSocket protocol is many times more efficient than HTTP. In recent years we can observe that developers tend to implement functionality in the form of WebSocket APIs instead of traditional REST APIs, that use HTTP. Modern technologies... |
What Has Data Science Got To Do With It - Thordis ThorsteinsIn this talk I want to shed some light on data science’s place within security. You can expect to learn how to see through common data science jargon that’s used in the industry, as well as to get a high level understanding of what’s... |
Well, That Escalated Quickly - A Penetration Testers Approach To Windows Privilege Escalation - Khalil BijjouCompanies engage security experts to penetrate their infrastructures and systems in order to find vulnerabilities before malicious persons do. During these penetration tests, security experts often encounter Windows endpoints or servers... |
The Turtle Gone Ninja - Investigation Of An Unusual Crypto-Mining Campaign - Ophir Harpaz And Daniel GoldbergAt first sight, Nansh0u is yet another attack campaign aiming to mine a marginal crypto-currency named TurtleCoin. However, things get much more interesting once you gain full access to the attacker’s infrastructure. Our investigation... |
The Future Is Here - Modern Attack Surface On Automotive - Lior YaariWorking as a security researcher for the automotive industry, I received futuristic equipment to test. Test? Hack! In two or three years from now, our vehicles will be full of communication interfaces to the outside world. V2X technologies,... |
|
| See More |
|
| Latest Security Papers & Presentations |
ICS/SCADA Malware ThreatsICS systems at risk Historically, malware threats for Industrial Control Systems (ICS) have been largely hypothetical, as incidents involving malware designed specifically for ICS have been rare. The...Go on to the site to read the full... |
Biggest Threats To ICS/SCADA SystemsIntroduction Imagine a scenario where two nations are at war. One nation has the capability to attack the others industrial infrastructure, like the electrical grid, oil and gas plants, water...Go on to the site to read the full... |
Web Server Security: Active DefenseIntroduction Active defense is an approach taken to prevent attacks from adversaries. In this article, we discuss the various active defenses and countermeasures that can be enforced in an attempt to...Go on to the site to read the full... |
How To Audit Windows 10 Application LogsIntroduction The Audit feature in Windows 10 is a useful carryover from prior Windows versions. It allows Windows 10 users and administrators to view security events in an audit log for the purpose...Go on to the site to read the full... |
6 Ways To Address The OWASP Top 10 VulnerabilitiesIntroduction The OWASP top 10 list of vulnerabilities has long been the source of data that information security professionals trust with making critical security decisions. There are many different...Go on to the site to read the full... |
|
| See More |
|
|
